Die vom Diesel-Skandal betroffenen Autohersteller können ihren Gewinn um die Kosten für die erwarteten rund fünf Millionen Software-Nachbesserungen mindern, hat die Bundesregierung mitgeteilt. Der ADAC hält Hardware-Umrüstungen für durchaus machbar.
Quelle: Heise Tech News
Two years ago, we announced the availability of Azure IoT Suite, a set of preconfigured solutions that deploy in minutes and help customers get started quickly and is customized to meet their needs. Since then, customers including The Hershey Company, Schneider Electric, Rolls Royce, and Sandvik have selected Azure IoT Suite to accelerate their business transformation through their IoT initiatives.
Today, we are excited to announce a new version of Azure IoT Suite’s Remote Monitoring preconfigured solution. Incorporating learnings from customers and partners, this new version is a fully operational IoT solution right out of the box. New features include:
Advanced scalability & extensibility: Listening to customers and partners, we’ve introduced a new scalable Microservices architecture that dramatically simplifies the ability to customize the solution to meet your needs.
Lower cost: We now provide two deployment options to match different needs:
Basic option to get started at a low cost
Standard version for production ready IoT solutions
Best of all, the basic option can be updated to Standard when needed.
New UI: A complete redesign of the user interface helps you visualize the capabilities of a production ready solution.
Flexible language support: We now support both Java and .NET programming languages.
The updated Remote Monitoring preconfigured solution also leverages the best of the existing preconfigured solutions including the ability to provision directly into your subscription within minutes, open source availability, and functionally comprehensive from device to business application.
Our redesigned user interface enables operators to perform the following tasks:
Visualize data on a rich dashboard for deep insights and solution status.
Configure rules and alarms over live IoT device telemetry.
Schedule device management jobs, including updates to software and configuration.
Provision your own custom physical or simulated devices.
Troubleshoot and remediate issues within your IoT device groups.
More options for developers and partners
Remote Monitoring is the first of our preconfigured solutions to leverage a microservices architecture available in both .NET and Java. Microservices have emerged as a prevalent pattern to achieve scale and flexibility, without compromising development speed. Microservices compartmentalize the code and provide well defined interfaces making the solution easier to understand and less monolithic. It also further expands options for partners that want to extend our current preconfigured solutions to build finished solutions that can be monetized.
Learn more
The Remote Monitoring solution is richly supplemented with how-to, tutorial, and GitHub developer documentation detailing the building, extending, and deploying of your changes.
View an interactive demo of the remote monitoring solution.
Provision the updated Remote Monitoring solution at www.azureiotsuite.com.
Quelle: Azure
I am delighted to announce the public preview of our latest security development from the Microsoft SQL product team, the new SQL Vulnerability Assessment (VA). SQL Vulnerability Assessment is your one-stop-shop to discover, track, and remediate potential database vulnerabilities. The VA preview is now available for Azure SQL Database and for on-premises SQL Server, offering you a virtual database security expert at your fingertips.
What is VA?
SQL Vulnerability Assessment (VA) is a new service that provides you with visibility into your security state, and includes actionable steps to investigate, manage, and resolve security issues and enhance your database fortifications. It is designed to be usable for non-security-experts. Getting started and seeing an initial actionable report takes only a few seconds.
Vulnerability Assessment report in the Azure portal.
This service truly enables you to focus your attention on the highest impact actions you can take to proactively improve your database security stature! In addition, if you have data privacy requirements, or need to comply with data protection regulations like the EU GDPR, then VA is your built-in solution to simplify these processes and monitor your database protection status. For dynamic database environments where changes are frequent and hard to track, VA is invaluable in detecting the settings that can leave your database vulnerable to attack.
VA offers a scanning service built into the Azure SQL Database service itself, and is also available via SQL Server Management Studio (SSMS) for scanning SQL Server databases. The service employs a knowledge base of rules that flag security vulnerabilities and deviations from best practices, such as misconfigurations, excessive permissions, and exposed sensitive data. The rule base is founded on intelligence accrued from analyzing millions of databases, and extracting the security issues that present the biggest risks to your database and its valuable data. These rules also represent a set of requirements from various regulatory bodies to meet their compliance standards, which can contribute to compliance efforts. The rule base grows and evolves over time, to reflect the latest security best practices recommended by Microsoft.
Results of the assessment include actionable steps to resolve each issue and provide customized remediation scripts where applicable. An assessment report can be customized for each customer environment and tailored to specific requirements. This process is managed by defining a security baseline for the assessment results, such that only deviations from the custom baseline are reported.
How does VA work?
We designed VA with simplicity in mind. All you need to do is to run a scan, which will scan your database for vulnerabilities. The scan is lightweight and safe. It takes a few seconds to run, and is entirely read-only. It does not make any changes to your database!
When your scan is complete, your scan report will be automatically displayed in the Azure Portal or in the SSMS pane:
Vulnerability Assessment report in SSMS. Currently available in limited preview.
The scan results include an overview of your security state, and details about each security issue found. You will find warnings on deviations from security best practices, as well as a snapshot of your security-related settings, such as database principals and roles, and their associated permissions. In addition, scan results provide a map of sensitive data discovered in your database with recommendations of the built-in methods available to protect it.
For all the issues found, you can view details on the impact of the finding, and you will find actionable remediation information to directly resolve the issue. VA will focus your attention on security issues relevant to you, as your security baseline ensures that you are seeing relevant results customized to your environment. See “Getting Started with Vulnerability Assessment” for more details.
You can now use VA to monitor that your database maintains a high level of security at all times, and that your organizational policies are met. In addition, if your organization needs to meet regulatory requirements, VA reports can be helpful to facilitate the compliance process.
Get started today!
We encourage you to try out Vulnerability Assessment today, and start proactively improving your database security stature. Track and monitor your database security settings, so that you never again lose visibility and control of potential risks to the safety of your data.
Check out “Getting Started with Vulnerability Assessment” for more details on how to run and manage your assessment.
Try it out, and let us know what you think!
Quelle: Azure
Eine neue Ransomware treibt ihr Unwesen im Master Boot Record von Windows-PCs. Darüber hinaus verschlüsselt sie auch Dateien – ohne jedoch einen Weg zur Entschüsselung zu bieten.
Quelle: Heise Tech News
Eine der größten Unternehmens- und Buchhaltungsfirmen weltweit ist einem Bericht zufolge gehackt worden. Ein unzureichend gesicherter Admin-Account soll Zugriff auf mehrere Millionen E-Mails mit privaten Kundendaten ermöglicht haben. (Security, E-Mail)
Quelle: Golem
This week at Ignite, we announced new capabilities in Azure Data Factory (ADF) service available in public preview for customers. Azure user preview terms of use can be found here. These new capabilities in ADF will enable you to build hybrid data integration at scale. Now you can create, schedule, and orchestrate your ETL/ELT workflows, wherever your data lives, in the cloud or on any self-hosted network. Meet security and compliance needs while taking advantage of extensive capabilities and paying only for what you use. Accelerate your data integration with multiple data source connectors natively available in-service. SQL Server Integration Services (SSIS) customers will benefit from easily lifting their SSIS packages into the cloud using new managed SSIS hosting capabilities in Data Factory.
We have taken the first steps to separate Control Flow and Data Flow within ADF to provide greater control over complex orchestrations that now facilitate looping, branching, and conditional structures within Control Flow. We have added new flexibility to scheduling by enabling triggering with wall-clock timers or on-demand via event generation. Parameters can now be defined and passed while invoking pipelines to enable incremental data loads.
Full details of the release and features can be found on the Azure Data Factory service page. We encourage you to try these new capabilities, available at public preview pricing.
Quelle: Azure
Extend your on-premises file servers to Azure Files with Azure File Sync
Since Azure Files became generally available, we’ve consistently heard from our customers that they want to embrace the power and flexibility of the cloud without giving up the locality of their on-premises file server. Today, we are excited to announce the preview of a great new feature in Azure Files that enables you to get the best of both the cloud and on-premises worlds: Azure File Sync.
Azure File Sync keeps your Azure File share in-sync with your on-premises Window Servers. The real magic of Azure File Sync is the ability to tier files between your on-premises file server and Azure Files. This enables you to keep only the newest and most recently accessed files locally without sacrificing the ability to see and access the entire namespace through seamless cloud recall. With Azure File Sync, you can effectively transform your Windows File Server into an on-premises tier of Azure Files.
Since Azure File Sync is a multi-master sync solution, it makes it easy to solve global access problems introduced by having a single point of access on-premises, or in Azure by replicating data between Azure File shares and servers anywhere in the world. With Azure File Sync, we’ve introduced a very simple concept, the Sync Group, to help you manage the locations that should be kept in sync with each other. Every Sync Group has one cloud endpoint, which represents an Azure File share, and one or more server endpoints, which represents a path on a Windows Server. That’s it! Everything within a Sync Group will be automatically kept in sync!
Azure File Sync also helps you leverage Azure to get control over your on-premises data. Since cloud tiering moves old and infrequently accessed files to Azure, it effectively helps you make unpredictable storage growth predictable. When disasters strike, Azure File Sync can help. Simply set up a new Windows Server, install Azure File Sync, and the namespace is nearly instantly synced down as your cache is rebuilt.
Azure File Sync will be available, as a preview offering, this week (week of 9/25) – try it out! Please see our documentation for additional information about how to setup and configure Azure File Sync. If you are attending Ignite, come to our great sessions on Azure Files and Azure File Sync:
Session
Time
Place
BRK2286: Microsoft Azure File Sync – seamlessly extend file services across servers and cloud
Tuesday, September 26, 2017
10:45 AM – 12:00 PM ET
Hyatt Regency Windermere X
BRK2161: Maximize storage efficiency and conquer distributed file access with Windows Server and Azure Files
Tuesday, September 26, 2017
12:30 PM – 1:45 PM ET
OCCC West Hall F2
BRK2158: Windows Server Fall Release technical foundation
Wednesday, September 27th
10:45 AM – 12:00 PM ET
OCCC West Hall E1
THR2015: Microsoft Azure File Sync – setup, configuration, and management
Wednesday, September 27th
5:35 PM – 5:55 PM ET
TBD
Quelle: Azure
This blog post was co-authored by JR Mayberr,y Principal PM Manager & Anupam Vij, Senior Program Manager, Azure Networking.
Distributed Denial of Service (DDoS) attacks are one of the top availability and security concerns voiced by customers moving their applications to the cloud. These concerns are justified as the number of documented DDoS attacks grew 380% in Q1 2017 over Q1 2016 according to data from Nexusguard. In October 2016, a number of popular websites were impacted by a massive cyberattack consisting of multiple denial of service attacks. It’s estimated that up to one third of all Internet downtime incidents are related to DDoS attacks.
As the types and sophistication of network attacks increases, Azure is committed to providing our customers with solutions that continue to protect the security and availability of applications on Azure. Security and availability in the cloud is a shared responsibility. Azure provides platform level capabilities and design best practices for customers to adopting and apply into application designs meeting their business objectives.
Today we're excited to announce the preview of Azure DDoS Protection Standard. This service is integrated with Virtual Networks and provides protection for Azure applications from the impacts of DDoS attacks. It enables additional application specific tuning, alerting and telemetry features beyond the basic DDoS Protection which is included automatically in the Azure platform.
Azure DDoS Protection Service offerings
Azure DDoS Protection Basic service
Basic protection is integrated into the Azure platform by default and at no additional cost. The full scale and capacity of Azure’s globally deployed network provides defense against common network layer attacks through always on traffic monitoring and real-time mitigation. No user configuration or application changes are required to enable DDoS Protection Basic.
Azure DDoS Protection Standard service
Azure DDoS Protection Standard is a new offering which provides additional DDoS mitigation capabilities and is automatically tuned to protect your specific Azure resources. Protection is simple to enable on any new or existing Virtual Network and requires no application or resource changes. Standard utilizes dedicated monitoring and machine learning to configure DDoS protection policies tuned to your Virtual Network. This additional protection is achieved by profiling your application’s normal traffic patterns, intelligently detecting malicious traffic and mitigating attacks as soon as they are detected. DDoS Protection Standard provides attack telemetry views through Azure Monitor, enabling alerting when your application is under attack. Integrated Layer 7 application protection can be provided by Application Gateway WAF.
Azure DDoS Protection Standard service features
Native Platform Integration
Azure DDoS Protection is natively integrated into Azure and includes configuration through the Azure Portal and PowerShell when you enable it on a Virtual Network (VNet).
Turn Key Protection
Simplified provisioning immediately protects all resources in a Virtual Network with no additional application changes required.
Always on monitoring
When DDoS Protection is enabled, your application traffic patterns are continuously monitored for indicators of attacks.
Adaptive tuning
DDoS protection understands your resources and resource configuration and customizes the DDoS Protection policy to your Virtual Network. Machine Learning algorithms set and adjust protection policies as traffic patterns change over time. Protection policies define protection limits, and mitigation is performed when actual network traffic exceeds the policies threshold.
L3 to L7 Protection with Application Gateway
Azure DDoS Protection service in combination with Application Gateway Web application firewall provides DDoS Protection for common web vulnerabilities and attacks.
Request rate-limiting
HTTP Protocol Violations
HTTP Protocol Anomalies
SQL Injection
Cross site scripting
DDoS Protection telemetry, monitoring & alerting
Rich telemetry is exposed via Azure Monitor including detailed metrics during the duration of a DDoS attack. Alerting can be configured for any of the Azure Monitor metrics exposed by DDoS Protection. Logging can be further integrated with Splunk (Azure Event Hubs), OMS Log Analytics and Azure Storage for advanced analysis via the Azure Monitor Diagnostics interface.
Cost protection
When the DDoS Protection services goes GA, Cost Protection will provide resource credits for scale out during a documented attack.
Azure DDoS Protection Standard service availability
Azure DDoS Protection service is available now in East U.S., West U.S. and West Central U.S.
How do I get started?
DDoS Protection is in preview and there is no cost for the service during preview. Azure customers may register for the Azure DDoS Protection service here.
To learn more about the service, please see the Azure DDoS Protection service documentation.
We would love to hear your feedback, questions, comments through our regular channels including Forums, StackOverFlow, or Uservoice.
Quelle: Azure
Können verschleierte Personen anhand ihrer Augenbrauen identifiziert werden? Ab welchem Zeitpunkt lassen sich verwertbare Fingerabdrücke von Neugeborenen abspeichern? Diese und noch mehr Fragen wurden auf der Konferenz BIOSIG in Darmstadt behandelt.
Quelle: Heise Tech News
Mehrere Entwickler weisen Nutzer auf Probleme mit macOS 10.13 hin und raten, mit dem System-Update noch zu warten. Neben Wacom ist auch Software von Adobe und Microsoft betroffen sowie weitere Anwendungen.
Quelle: Heise Tech News
